NYDFS Penalizes Cruise Ship Operator For Failing To Prevent And Timely Report Cyberattacks

July 12, 2022

On June 23, 2022, the New York Department of Financial Services issued a Consent Order finding that cruise ship operator Carnival Corporation violated the Department's cybersecurity regulation by failing to implement required policies and procedures as well as report several cyber incidents that the company experienced. The enforcement action signals DFS's determination to ensure all licensed entities—including victims of cyberattacks—fully protect sensitive customer and employee data by rigorously adhering to NYDFS's cybersecurity regulation.

Download PDF

Clifford Chance

Briefings

NYDFS Penalizes Cruise Ship Operator For Failing To Prevent And Timely Report Cyberattacks

July 12, 2022

Celeste Koeleveld

Partner

New York

Megan Gordon

Office Managing Partner, Washington, DC

Washington D.C.

Daniel Silver (He/Him)

Partner

New York

Brian Yin

Associate

Washington D.C.

Office Managing Partner, Washington, DC

Washington D.C.

Partner

New York

Associate

Washington D.C.

Toolkits & Client Log-in